tech2 News StaffFeb 02, 2016 16:01:47 IST
Google has released a security update to Nexus devices through an over-the-air (OTA) update as part of its Android Security Bulletin Monthly Release process. Google has also stated in the bulletin that source code patches for these issues will be released to the Android Open Source Project (AOSP) repository.
The most severe of these issues addressed by the update was a critical security vulnerability that could enable remote code execution on an affected device through multiple methods such as email, web browsing and MMS when processing media files. The Remote Code Execution Vulnerability in Broadcom's Wi-fi driver is also critical as it could allow remote code execution on an affected device while connected to the same network as the attacker.
Google has received no reports of active customer exploitation of these newly reported issues so far. The Android security platform and service protections such as SafetyNet will provide mitigations for these issues and Google has advised users to accept the updates.